Free Malware Removal Forum

Welcome to MalwareRemoval.com,What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Please help. I seem to have the Antivirus XP Virus and AVG and others seem to be picking up some Trojans. Please advise. Attached is a HJL log and at this time a Malwarebytes is scanning and will post results asap

Thank you for your reply. I have followed your instructions but receive an AVG alert saying the file is infected Trojan horse generic 11.OW and I have a widows message that says "Windows cannont access this file. You may not have the appropriate permission to access this item" Any suggestions ? Since contacting the forum I have run 3 Malwarebytes scans and these are now comming up clean. A Kaspersky scan yesterday also came up clean but I am not certain that this is the case.

Shabba. Sorry for the delay.Yes, I am logged in as an administrator. I tried logging in under a different account but with the same result. I also ran the Windows Malicious software tool and it removed Trojan Win32/Tibs HH, however attached is current MAMB log and HJS log if they are of use if there is anything there that should not be present.Malwarebytes' Anti-Malware 1.24Database version: 1056Windows 5.1.2600 Service Pack 2

Thanks for a speedy reply. Yes I would like some further research if possible. MAMB seems to have deleted the bad stuff, but as it is often said, just because you can't see it, does not mean it isn't there.

I have run a Kaspersky scan and as there were no infections, therefore no report, however here is latest HJT log. Do you have any suggestions for a root kit scanner. AVG used to have a good scanner but when AVG 8 was installed, then it took the old scanner away with it. I believe it comes bundled with a pay version now.Logfile of Trend Micro HijackThis v2.0.2Scan saved at 18:26:20, on 17/08/2008Platform: Windows XP SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v7.00 (7.00.6000.16705)Boot mode: Normal

We need first to disable TeaTimer that it doesn't interfere with fixes. You can re-enable it when you're clean again:

1. Run Spybot-S&D in Advanced Mode. 2. If it is not already set to do this Go to the Mode menu select "Advanced Mode" 3. On the left hand side, Click on Tools 4. Then click on the Resident Icon in the List 5. Uncheck "Resident TeaTimer" and OK any prompts. 6. Restart your computer.

We need first to disable TeaTimer that it doesn't interfere with fixes. You can re-enable it when you're clean again:

1. Run Spybot-S&D in Advanced Mode. 2. If it is not already set to do this Go to the Mode menu select "Advanced Mode" 3. On the left hand side, Click on Tools 4. Then click on the Resident Icon in the List 5. Uncheck "Resident TeaTimer" and OK any prompts. 6. Restart your computer.

As a matter of interest, all entries that are in quarantine in progs such as MAMB / AVG etc, what is the best thing to do with them. I usually delete anything found and use CC cleaner in the seven passes mode and then every month or so use Glaries Utilities to wipe the free space. I know it sounds a bit naive but is there any problem with simply deleting stuff that has been quarantined.

Also thank you for your AVG Root Kit link. I have now readded this and although it cannot be updated, it seems to be a usefull tool to have.

Who is online

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.